Class Privileges.ManageGrants
java.lang.Object
org.apache.gravitino.authorization.Privileges.GenericPrivilege<Privileges.ManageGrants>
org.apache.gravitino.authorization.Privileges.ManageGrants
- All Implemented Interfaces:
Privilege
- Enclosing class:
- Privileges
public static class Privileges.ManageGrants
extends Privileges.GenericPrivilege<Privileges.ManageGrants>
The privilege to grant or revoke privileges on securable objects. If bound on the metalake, we
can grant or revoke the role for users or groups.
Unlike most privileges, this can be bound at any level of the object hierarchy — METALAKE, CATALOG, SCHEMA, TABLE, VIEW, TOPIC, FILESET, or MODEL. A grant at a parent level implicitly covers all descendants within it.
-
Nested Class Summary
Nested classes/interfaces inherited from interface org.apache.gravitino.authorization.Privilege
Privilege.Condition, Privilege.Name -
Method Summary
Modifier and TypeMethodDescriptionstatic Privileges.ManageGrantsallow()booleancanBindTo(MetadataObject.Type type) If the privilege can bind to a securable object, then this method will return true, otherwise false.static Privileges.ManageGrantsdeny()Methods inherited from class org.apache.gravitino.authorization.Privileges.GenericPrivilege
condition, equals, hashCode, name, simpleString
-
Method Details
-
allow
- Returns:
- The instance with allow condition of the privilege.
-
deny
- Returns:
- The instance with deny condition of the privilege.
-
canBindTo
Description copied from interface:PrivilegeIf the privilege can bind to a securable object, then this method will return true, otherwise false.- Parameters:
type- The securable object type.- Returns:
- It will return true if the privilege can bind to a securable object, otherwise false.
-